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DETAILED ACTION 
Claim Rejections - 35 USC § 101 

1. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 
any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 

requirements of this title. 

2. Claims 18-33 are rejected under 101 because the claimed invention is directed to non- 
statutory subject matter. 

3. USPTO is obliged to give claims their broadest reasonable interpretation consistent with 
the specification during proceeding before the USPTO. See In re Zeltz, 893 F.2d 3 19(Fed. Cir. 
1989)(during patent examination the pending claims must be interpreted as broadly as their terms 
reasonably allow). The broadest reasonable interpretation of a claim drawn to a computer 
readable medium typically covers forms of non-transitory tangible media and transitory 
propagating signals per se in view of the ordinary and customary meaning of computer readable 
media, particularly when the specification is silent. See MPEP 21 1 1 .01 . When the broadest 
reasonable interpretation of a claim covers a signal per se, the claim must be rejected under 35 
U.S.C. 101 as covering non-statutory subject matter. See In re Nuijten, 500 F.3d 1346, 1356- 
57(Fed. Cir. 2007)(transitory embodiments are not directed to statutory subject matter). The 
Examiner suggest the Applicant to amend the claims to claim, non-transitory computer readable 
media. 
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Claim Rejections - 35 USC § 112 

1 . The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly claiming the 
subject matter which the applicant regards as his invention. 

2. Claims 1-75 are rejected under 35 U.S.C. 1 12, second paragraph, as being indefinite for 
failing to particularly point out and distinctly claim the subject matter which applicant regards as 
the invention. More specifically, claims 1, 11, 18, 27, 34, 43, 50, 58, 68, are rejected under 1 12 
for the limitations of, "new SA attributes are renegotiated for the new address for 
communications involving the gateway". It is unclear from the specification that new SA 
attributes are used to renegotiate the new address. In the specification paragraph[0027], 
discloses the new IP address thus sent may be used with the same SA which was used for a 
secure connection between two end machines prior to the change of IP address, and using the 
same SA provide connectivity. In the specification paragraph [0059], discloses the client system 
renegotiates SA attributes as a change of address client system for secure connection. The 
Examine is unclear fi-om the specification if a new SA is used, because the Applicant discloses 
that the same SA is used for the new address. 
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Continued Examination Under 37 CFR 1.114 

1 . A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1 . 1 7(e), was filed in this application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.1 14, and the fee set forth in 37 CFR 1.17(e) 
has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 
37 CFR 1.1 14. Applicant's submission filed on 1/28/10 has been entered. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sotight to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 1-75 are rejected under 35 U.S.C. 103(a) as being unpatentable over Bahl et 
al(2003/0069016) in view of Perkins RFC 3344, hereinafter referred to RFC 3344. 

4. As per claims 1,18, 34, Bahl et al discloses a method of providing a secure connection 
from a first end machine(i.e. mobile host) to a second end machine(i.e. correspondent host)(see 
fig. 2 sheet 2), said method being performed in said first end machine, said method comprising: 
negotiating a first set of attributes of a security association (SA) with said second end 
machine[0005, 0032-0033], wherein said first set of attributes are used to provide said secure 
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connection to said second end machine; sending to said second end machine a first paclcet using 
said SA, wherein said first end machine is assigned a self address equaling a first address such 
that said first packet is sent with said first address and using said SA; detecting that said self 
address is changed to a new address[0040-0043]; sending a request to said second end machine, 
wherein said new address is contained in a payload portion of a packet forming said request, said 
request indicating that said self address has changed to said new address; and sending to said 
second end machine a second packet using said SA, wherein said second packet contains said 
new address as a source address[004 1-0043], wherein the first end machine(i.e. mobile host) is 
configured to send an update address request(i.e. address change message) to a gateway 
providing connectivity to the first end machine[0021, 0024], the update address request 
indicating the new address is to be bound to the SA, the first end machine(i.e. mobile host) being 
further configured to receive an acceptance message from the gateway, the acceptance 
message(i.e. acknowledgement message, 108) signifying that the new address is bound to the SA 
such that a flow is facilitated by the second machine(i.e. correspondent host) using the SA and 
using the first set of attributes[0025-0026, 0033, 0041-0043]. 

5. Bahl discloses that the mobile host waits for the acknowledgment from the correspondent 
host. Bahl discloses that the ACM and ACK messages are UDP messages and are not 
guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
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request has not been received. Bahl is silent on new SA attributes are renegotiated for the new 
address for communications involving the gateway, and not receiving message within a specified 
time. 

6. RPC 3344 teaches wherein if the acceptance message(i.e. registration reply) is not 
received within a specified time, an assumption is made that the update address request has not 
been received(see 3.6.3 Registration Retransmission)(RPC 3344 teaches when no registration 
reply has been received within a reasonable time) and new SA attributes(new registration 
identification is chosen for each retransmission) are renegotiated for the new address for 
communications involving the gateway(see 2.4.2.1, 3.3, 3.6.3). It would have been obvious to 
one of ordinary skill in the art at the time of the invention to include message not received within 
a specified time and renegotiate the new address for communications involving that gateway, 
both Bahl and RFC 3344 teach detecting when a mobile node has moved from one subnet to 
another and requesting a new address, the motivation to include message not received within a 
specified time and renegotiate the new address for communications involving that gateway of 
RFC 3344 with Bahl is that a refransmission will not require the home agent to resynchronize 
with the mobile node by issuing another nonce in the case in which the original registration 
request was lost by the network(see 3.6.3 Regisfration Refransmission). 

7. As per claims 2, 19, 35, 51, Bahl discloses encrypting a portion of said payload 
containing said new address to generate an encrypted data and including said encrypted data in 
said request[0043]. 
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8. As per claims 3, 20, 36, 52, Bahl discloses including an authentication data in said 
payload, wherein said authentication data authenticates that said payload is sent from said first 
system[0042]. 

9. As per claims 4, 21, 37, Bahl discloses receiving from said second end machine a third 
packet in response to said second packet[0049]. 

10. As per claims 5, 22, 38, Bahl discloses wherein said second packet and said third packet 
relate to user applications [0030]. 

11. As per claim 6, Bahl discloses receiving a response from said second end machine, where 
said response indicates whether said new address is bound to said SA, wherein said second 
packet is sent after receiving said response[0033, 0038]. 

12. As per claims 7, 24, 40, Bahl discloses wherein a plurality of secure connections are 
provided between said first end machine and said second end machine[0005, 0030], wherein a 
plurality of SAs are present associated with corresponding ones of said plurality of secure 
connections, said method fiirther comprising: including an identifier associated with each of said 
plurality of SAs in said request, wherein said response indicates whether said new address is 
bound to all of said plurality of SAs in said second end machine[0033, 0043]. 

13. As per claims 8, 25, 32, 41, 48, 53, 61, Bahl discloses wherein said negotiating is 
performed according to Internet Security Association and Key Management Protocol (ISAKMP), 
and wherein said new address is contained in an ISAKMP portion of said payload[0033, 0043]. 

14. As per claim 9, Bahl discloses wherein said packet comprises an IP packet[0043]. 
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15. As per claims 10, 26, 42, Bahl discloses wherein said first end device comprises a client 
system from which a user accesses a server system[0020]. 

16. As per claims 1 1, 27, 43, 49, Bahl discloses a method of providing a secure connection 
from a first end machine to a second end machine, said method being performed in said second 
end machine[0005, 0030], said method comprising: negotiating a first set of attributes of a 
security association (SA) with said first end machine, wherein said first set of attributes are used 
to provide said secure connection to said first end machine[0005, 0032-0033]; binding said SA to 
a first address, wherein said first address comprises a self address of said first end machine; 
receiving a request indicating that said self address of said first end machine is changed to a new 
address, wherein said new address is contained in a payload portion of a packet forming said 
request; and binding said SA to said new address[0042-0043], wherein the first end machine(i.e. 
mobile host) is configured to send an update address request(i.e. address change message) to a 
gateway providing connectivity to the first end machine[0021, 0024], the update address request 
indicating the new address is to be bound to the SA, the first end machine(i.e. mobile host) being 
fvirther configured to receive an acceptance message from the gateway, the acceptance 
message(i.e. acknowledgement message, 108) signifying that the new address is bound to the SA 
such that a flow is facilitated by the second machine(i.e. correspondent host) using the SA and 
using the first set of attributes[0025-0026, 0033, 0041-0043]. 

17. Bahl discloses that the mobile host waits for the acknowledgment from the correspondent 
host. Bahl discloses that the ACM and ACK messages are UDP messages and are not 
guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
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from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
request has not been received. Bahl is silent on new SA attributes are renegotiated for the new 
address for conmiunications involving the gateway, and not receiving message within a specified 
time. 

18. RFC 3344 teaches wherein if the acceptance message(i.e. registration reply) is not 
received within a specified time, an assumption is made that the update address request has not 
been received(see 3.6.3 Registration Retransmission)(RFC 3344 teaches when no registration 
reply has been received within a reasonable time) and new SA attributes(new registration 
identification is chosen for each retransmission) are renegotiated for the new address for 
communications involving the gateway(see 2.4.2.1, 3.3, 3.6.3). It would have been obvious to 
one of ordinary skill in the art at the time of the invention to include message not received within 
a specified time and renegotiate the new address for communications involving that gateway, 
both Bahl and RFC 3344 teach detecting when a mobile node has moved fi-om one subnet to 
another and requesting a new address, the motivation to include message not received within a 
specified time and renegotiate the new address for communications involving that gateway of 
RFC 3344 with Bahl is that a retransmission will not require the home agent to resynchronize 
with the mobile node by issuing another nonce in the case in which the original registration 
request was lost by the network(see 3.6.3 Registration Retransmission). 
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19. As per claims 12, 28, 44, Bahl discloses wherein said payload portion is received in an 
encrypted format, said method further comprising decrypting said payload portion to determine 
said new address[0031, 0033]. 

20. As per claims 13, 29, 45, Bahl discloses receiving a first packet from said first end 
machine, wherein said first packet is received using said first address, wherein said first packet is 
received before receiving said request; receiving a second packet from said first end machine, 
wherein said second packet is received using said new address, wherein said second packet is 
received after receiving said request; and processing said first packet and said second packet 
using said SA[0032-0033, 0040-0043]. 

21. As per claim 14, Bahl discloses sending a response to said first end machine upon 
receiving said request, where said response indicates whether said new address is bound to said 
SA, wherein said second packet is received after sending said response [0022-0023, 0042]. 

22. As per claims 15, 31, 47, Bahl discloses wherein a plurality of secure connections are 
provided between said first end machine and said second end machine, wherein a plurality of 
SAs are present associated with corresponding ones of said plurality of secure connections, 
wherein said request includes an identifier associated with each of said plurality of SAs in said 
request, wherein said response indicates whether said new address is bound to all of said 
plurality of SAs[0005, 0030, 0033, 0043]. 

23. As per claim 16, Bahl discloses wherein said negotiating is performed according to 
Internet Security Association and Key Management Protocol (ISAKMP), and wherein said 
request is sent consistent with a format specified by ISAKMP[0030]. 
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24. As per claims 17, 33, Bahl discloses wherein said first end device comprises a 
gateway [0021]. 

25. As per claim 23, Bahl discloses sending a request to said second end machine, wherein 
said request indicates that said self address has changed to said new address; and receiving a 
response from said second end machine, where said response indicates whether said new address 
is bound to said SA, wherein said second packet is sent after receiving said response [0022, 
0024, 0030]. 

26. As per claims 30, 46, Bahl discloses receiving a request from said first end machine, 
wherein said request indicates that said self-address has changed to said new address; and 
sending a response to said first end machine, where said response indicates whether said new 
address is bound to said SA, wherein said second packet is received after sending said response 
[0032-0033, 0040-0043]. 

27. As per claim 39, Bahl discloses means for sending a request to said second end machine, 
wherein said request indicates that said self address has changed to said new address; and means 
for receiving a response from said second end machine, where said response indicates whether 
said new address is bound to said SA, wherein said second packet is sent after receiving said 
response[0022, 0024, 0030]. 

28. Same Motivation as claim 1 above. As per claim 50, Bahl discloses a networking system 
comprising: a first end device and a second end device operable to: set up a secure connection 
between said first end device and said second end device, wherein said SA is bound to a first 
address in said second end device, wherein said first address comprises a self address of said 
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first end device, wherein said secure connection is based on a security association (SA); change 
said self address of said first end device to a new address; send a request to said second end 
machine, wherein said new address is contained in a payload portion of a packet forming said 
request, said request indicating that said self address has changed to said new address; and 
continue using said SA to provide said secure connection between said first end device and said 
second end device[0032-0033, 0043], wherein the first end machine(i.e. mobile host) is 
configured to send an update address request(i.e. address change message) to a gateway 
providing connectivity to the first end machine[0021, 0024], the update address request 
indicating the new address is to be bound to the SA, the first end machine(i.e. mobile host) being 
further configured to receive an acceptance message from the gateway, the acceptance 
message(i.e. acknowledgement message, 108) signifying that the new address is bound to the SA 
such that a flow is facilitated by the second machine(i.e. correspondent host) using the SA and 
using the first set of attributes[0025-0026, 0033, 0041-0043]. 

29. Bahl discloses that the mobile host waits for the acknowledgment fi'om the correspondent 
host. Bahl discloses that the ACM and ACK messages are UDP messages and are not 
guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
request has not been received. Bahl is silent on new SA attributes are renegotiated for the new 
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address for communications involving the gateway, and not receiving message within a specified 
time. 

30. RFC 3344 teaches wherein if the acceptance message(i.e. registration reply) is not 
received within a specified time, an assumption is made that the update address request has not 
been received(see 3.6.3 Registration Retransmission)(RFC 3344 teaches when no registration 
reply has been received within a reasonable time) and new SA attributes(new registration 
identification is chosen for each retransmission) are renegotiated for the new address for 
communications involving the gateway(see 2.4.2.1, 3.3, 3.6.3). 

31. As per claim 54, Bahl discloses wherein said first end device comprises an address block 
detecting that said self address has changed from said first address to said new address, said 
address block sending a request to said second end device indicating that said new address is to 
be bound to said SA[0042-0043]. 

32. As per claim 55, Bahl discloses wherein said second end device comprises: a memory 
storing a security association database (SAD) representing binding of SAs to corresponding 
self addresses at the other end of security connections, wherein said SAD is modified to indicate 

that said new address is associated with said SA in response to receiving said request[0032- 
0033]. 

33. As per claim 56, Bahl discloses wherein said second end device fiirther comprises: 

a connection management block negotiating a plurality of attributes with said first end device, 
wherein said plurality of attributes form said SA, said connection management block receiving 
said request and modifying said SAD to bind said SA to said new address[0005, 0032]. 
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34. As per claim 57, Bahl discloses wherein said second end device comprises a 
gateway [0021]. 

35. Same Motivation as claim 1. As per claim 58, Bahl discloses a first end machine 
providing a secure connection to a second end machine, said first end machine comprising: a 
connection management block negotiating a first set of attributes of a security association (SA) 
with said second end machine[0020, 0032], wherein said first set of attributes are used to provide 
said secure connection to said second end machine; an address block detecting that a self address 
of said first end machine is changed fi-om a first address to a new address and sending a request 
to said second end machine[0042-0043], wherein said new address is contained in a payload of a 
packet forming said request, said request indicating that said self address has changed to said 
new address; and a secvire transmission block sending to said second end machine a first packet 
using said SA, wherein said first end machine is assigned a self address equaling a first address 
such that said first packet is sent with said first address and using said SA, said secure 
transmission block sending a second packet using said SA and said new address after said 
address block detects that said self address is changed to said new address[004 1-0043], wherein 
the first end machine(i.e. mobile host) is configured to send an update address request(i.e. 
address change message) to a gateway providing connectivity to the first end machine[0021, 
0024], the update address request indicating the new address is to be bound to the SA, the first 
end machine(i.e. mobile host) being fiirther configured to receive an acceptance message from 
the gateway, the acceptance message(i.e. acknowledgement message, 108) signifying that the 
new address is bound to the SA such that a flow is facilitated by the second machine(i.e. 
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correspondent host) using the SA and using the first set of attributes[0025-0026, 0033, 0041- 
0043]. 

36. Bahl discloses that the mobile host waits for the acknowledgment from the correspondent 
host. Bahl discloses that the ACM and ACK messages are UDP messages and are not 
guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
request has not been received. Bahl is silent on new SA attributes are renegotiated for the new 
address for communications involving the gateway, and not receiving message within a specified 
time. 

37. RFC 3344 teaches wherein if the acceptance message(i.e. registration reply) is not 
received within a specified time, an assumption is made that the update address request has not 
been received(see 3.6.3 Registration Retransmission)(RFC 3344 teaches when no registration 
reply has been received within a reasonable time) and new SA attributes(new registration 
identification is chosen for each retransmission) are renegotiated for the new address for 
communications involving the gateway(see 2.4.2.1, 3.3, 3.6.3). 

38. As per claim 59, Bahl discloses wherein said address block encrypts a portion of said 
payload containing said new address to generate an encrypted data and includes said encrypted 
data in said request[0043]. 
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39. As per claim 60, Bahl discloses wherein said address block includes an authentication 
data in said payload, wherein said authentication data authenticates that said payload is sent from 
said first system[0024-0026]. 

40. As per claim 62, Bahl discloses wherein said secure connection is provided using said SA 
both before and after said the change of said self_address such that said secure communication 
can be provided with minimal overhead even if said self address changes [0043]. 

41 . As per claim 63, Bahl discloses wherein said secure fransmission block receives from 
said second end machine a third packet in response to said second packet[0038, 0041]. 

42. As per claim 64, Bahl discloses wherein said connection management block sends a 
request to said second end machine, wherein said request indicates that said self address has 
changed to said new address, said connection management block receiving a response from 
said second end machine, where said response indicates whether said new address is bound to 
said SA in said second machine, wherein said second packet is sent after receiving said 
response[0005, 0041-0043]. 

43. As per claim 65, Bahl discloses wherein a plurality of secure connections are provided 
between said first end machine and said second end machine, wherein a plurality of SAs are 
present associated with corresponding ones of said plurality of secure connections, wherein said 
address block includes an identifier associated with each of said plurality of SAs in said request, 
wherein said response indicates whether said new address is bound to all of said plurality of SAs 
in said second end machine[0005, 0030, 0033, 0043]. 
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44. As per claim 66, Bahl discloses wherein said connection management block operates 
according to Intemet Security Association and Key Management Protocol (ISAKMP), and 
wherein said request is sent consistent with a format specified by ISABCMP[0030-0031]. 

45. As per claim 67, Bahl discloses wherein at least some of said first set of attributes are 
contained in an ISAKMP SA[0032-0033]. 

46. As per claim 68, Bahl discloses a second end machine providing a secure connection 
to a first end machine, said second end machine comprising: a connection management block 
negotiating a first set of attributes of a security association (SA) with said first end 
machine[0005, 0033], wherein said first set of attributes are used to provide said secure 
connection to said first end machine; and a memory storing a security association database 
(SAD) indicating that said SA is bound to a first address, wherein said first address comprises a 
self address of said first end machine, wherein said connection management block receives a 
request indicating that said self address of said first end machine is changed to a new address, 
changes said SAD to indicate that said SA is bound to said new address, wherein said new 
address is contained in a payload portion of a packet forming said request[004 1-0043], wherein 
the first end machine(i.e. mobile host) is configured to send an update address request(i.e. 
address change message) to a gateway providing connectivity to the first end machine[0021, 
0024], the update address request indicating the new address is to be bound to the SA, the first 
end machine(i.e. mobile host) being further configured to receive an acceptance message from 
the gateway, the acceptance message(i.e. acknowledgement message, 108) signifying that the 
new address is bound to the SA such that a flow is facilitated by the second machine(i.e. 
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correspondent host) using the SA and using the first set of attributes[0025-0026, 0033, 0041- 
0043]. 

47. Bahl discloses that the mobile host waits for the acknowledgment from the correspondent 
host. Bahl discloses that the ACM and ACK messages are UDP messages and are not 
guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
request has not been received. Bahl is silent on new SA attributes are renegotiated for the new 
address for communications involving the gateway, and not receiving message within a specified 
time. 

48. RFC 3344 teaches wherein if the acceptance message(i.e. registration reply) is not 
received within a specified time, an assumption is made that the update address request has not 
been received(see 3.6.3 Registration Retransmission)(RFC 3344 teaches when no registration 
reply has been received within a reasonable time) and new SA attributes(new registration 
identification is chosen for each retransmission) are renegotiated for the new address for 
communications involving the gateway(see 2.4.2.1, 3.3, 3.6.3). 

49. As per claim 69, Bahl discloses wherein said payload portion is received in an encrypted 
format, said connection management block decrypting said payload portion to determine said 
new address [0031]. 
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50. As per claim 70, Bahl discloses further comprising a secure transmission block receiving 
a first packet from said first end machine, wherein said first packet is received using said first 
address, wherein said first packet is received before receiving said request, said secure 
transmission block receiving a second packet from said first end machine, wherein said second 
packet is received using said new address, wherein said second packet is received after receiving 
said request, wherein said secure transmission block processes said first packet and said second 
packet using said SA[0005, 0032-0033]. 

51. As per claim 7 1 , Bahl discloses wherein said connection management block receives a 
request from said first end machine, wherein said request indicates that said self address has 
changed to said new address, said connection management block sending a response to said first 
end machine after changing said SAD, wherein said response indicates whether said new address 
is bound to said SA, wherein said second packet is received after sending said response [0005, 
0041-0043]. 

52. As per claim 72, Bahl discloses wherein a plurality of secure connections are provided 
between said first end machine and said second end machine, wherein a plurality of SAs are 
present associated with corresponding ones of said plurality of secure connections, wherein said 
request includes an identifier associated with each of said plurality of SAs in said request, 
wherein said response indicates whether said new address is bound to all of said plurality of 
SAs[0005, 0032-0033]. 
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53. As per claim 73, Bahl discloses wherein said negotiating is performed according to 
Intemet Security Association and Key Management Protocol (ISAKMP), and wherein said 
request is sent consistent with a format specified by ISAKMP[0030]. 

54. As per claim 74, Bahl discloses wherein at least some of said first set of attributes are 
contained in an ISAKMP SA[0032-0033]. 

55. As per claim 75, Bahl discloses wherein said first end device comprises a gateway[0021]. 

Response to Amendment 

56. A Final rejection was mailed on 10/29/09 in which claims 1-75 were rejected. The 
Applicant has responded to the Final action by filing a Request for Reconsideration (RCE). The 
Applicant amended all independent claims. Claims 1-75 are pending. Applicant's arguments 
filed 1/28/10 have been fiiUy considered but they are not persuasive. 

57. The Applicant argues the newly added limitations of, "if the acceptance message is not 
received within a specified time, an assumption is made that the update address request has not 
been received a new SA attributes are renegotiated for the new address for communications 
involving the gateway". Bahl discloses that the mobile host waits for the acknowledgment from 
the correspondent host. Bahl discloses that the ACM and ACK messages are UDP messages and 
are not guaranteed to teach the other side, and the mobile host cannot be certain that a given 
correspondent host has received the address change notification unless an acknowledgement 
from the correspondent host is received. Bahl also discloses retries the address change notify 
message until it receives a migration completed message[0044]. Thus, Bahl does disclose 
wherein if the acceptance message is not received, an assumption is made that the update address 
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request has not been received. Bahl is silent on "renegotiating step and the specified time". 
Thus, the Applicant's remarks in regards to these limitations is moot. New art has been applied 
to meet the "renegotiating step and specified time", see above for rationale. 

Conclusion 

Any inquiry concerning this communication or earlier communications fi-om the 
examiner should be directed to JENISE E. JACKSON whose telephone number is (571)272- 
3791 . The examiner can normally be reached on Increased Flex time, but generally in the office 
M-Fri(8-4:30).. 

If attempts to reach the examiner by telephone are unsuccessfiil, the examiner's 
supervisor, Edan Orgad can be reached on (571) 272-7884. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-fi:ee). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

April 16,2010 

/J. E. J./ 

Examiner, Art Unit 2439 
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/Edan Orgad/ 

Supervisory Patent Examiner, Art Unit 2439 



